Smoothwall Filter (On Premise)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Force Google sign in on SSL login page

    The SSL login page is enabled for Google sign in but users are still able to authenticate using OD or AD credentials. We would like to see the option to customise the login page so that users are asked for OD/AD login or Google login, not both.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow Local groups to be created in directories

    When creating a new directory in Auth > Directories > Add New Group Mapping, it would be great for us to create a new local group from this window.

    Many of times, I've had to cancel what I'm doing and browse to Groups as I cannot create a local group from Directories

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. inactivity time-out

    We could really do with making this changeable for different user groups

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. HTTPS Proxy

    We're doing a trial of SWG and I am surprised that https proxying uses the same non-https proxy server and port. This seems like a major security hole when using proxy authentication as it sends the users auth in the clear. It doesn't seem too difficult to use https for https proxy auth.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. Make it possible to revoke certificates

    In the Global Proxy > Certificate activity screen, next to each certificate, where it shows how much time is left, there should be a button to immediately expire the authentication.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. 2FA Support

    Would it be possible to please have some form of multi factor authentication (2FA) for the VPN module?

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. Chromebook login.fcgi page

    The current login.fcgi page is confusing for users. At the time this page is presented, the user has already authenticated with the Google directory. The presence of a G+ button (which doesn't work), and an empty grey box (which looks like it's wanting input) causes confusion. Could we either be allowed to edit the page, or have a more meaningful page? Even better, once the page has served its purpose, could it be auto closed?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. user activity multi log off

    User Activity Page.

    Added option of a tick box besides each user logged on so that anyone and any multi numbers users could be logged off at once.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Directoires - the abilty to select an AD controller to bind to.

    In domains that contain many AD controllers at various site locations, it would be nice to be able to select the controller the directory binds to. We've had incidents where the directory has bound to a controller on a busy link that has caused slowness because of authentication time-outs and it would be so useful to be able to use a controller that is located at the data center that doesn't suffer with this bottleneck.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. Need to be able to set different login timeout values for different groups or locations.

    We simple need to be able to set different login timeout values for different groups of NTLM or Captive Portal identified users.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. We need to be able to set a timeout value that is NOT an idle timeout, but simply an overall timeout value.

    Idle timeouts are great, and support has indicated that the user login timeout value is actually an idle timeout but I don't yet know if that's right, but we need to be able to decide for ourselves if we want it to be an idle timeout or simply an overall timeout from the time the user 1st authenticated.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. authenticate

    More meaningful information when 'authd[6551]: Ntlm_auth: [DomainName] Unable to authenticate user' is logged. Ideally source IP address, Domain controller being used to authenticate and if available Username presented for authentication.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. Authentication recovery if directory server not available on boot

    If no domain controller is available when Smoothwall starts up, it goes into a state where users cannot authenticate through NTLM even if the domain controller server subsequently becomes available. I am not sure whether this applies to any other forms of authentication. Users receive the NTLM authentication failure message and "Ntlm_auth: Unable to authenticate user" is logged in the authentication log. Authentication can be restored by a restart of the Smoothwall or disabling the active directory authentication entry and then reenabling it, just restarting the authentication service does not seem to be enough.

    This is an issue when a…

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  14. Map group link

    When creating or modifying a group there should be an obvious link to mapping the group to AD rather than guessing at "directories"

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. on the Web proxy\settings\save and restart with a clear cash some sort of accnologment when it starts and finishes

    on the Web proxy\settings\save and restart with a clear cash some sort of accnologment when it starts and finishes

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Adding "User Agent" s "location".

    Some user agents do not play well with either NTLM or Kerberos authentication. It would be nice if there was a way to create specific authentication rules based on User Agent string in HTTP/HTTPS request.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  17. Local User account : User should be able to change their own password

    I am using smoothwall from the last 3 year it works really well the only issue I find that USER want to change their own password. IT will be really nice if you can provide this feature.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. API for local user accounts management

    My organization has to use the local users authentication option for Smoothwall, located under Services > Directories. As there are a lot of users, loading this up and finding the user is very unwieldy.

    Can smoothwall expose an API for basic user account manipulation, i.e. changing a user's group, resetting the password, and adding a new user?

    Honestly 90% of the UI loading is unnecessary and the page is not user friendly at all for a large number of users. An API would allow me to add something to my organization's own internal apps that would help centralize this function…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. Need a place to enter the password for the FTP user in the Scheduler screen.

    Need a place to enter the password for the FTP user in the Scheduler screen. If it exists, there should be a link to that page when editing schedules.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
2 Next →
  • Don't see your idea?

Feedback and Knowledge Base